package com.hyt.it.ogt.kq.common.gov.config;

import org.springframework.context.annotation.Configuration;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.oauth2.config.annotation.web.configuration.EnableResourceServer;
import org.springframework.security.oauth2.config.annotation.web.configuration.ResourceServerConfigurerAdapter;

/**
 * 
* @ClassName: ResourceServerConfig  
* @Description: 资源服务器配置 
* @author liuq  
* @date 2018年6月4日  
*
 */
@Configuration
@EnableResourceServer
public class GovResourceServerConfig extends ResourceServerConfigurerAdapter {
    @Override
    public void configure(HttpSecurity http) throws Exception {
    	http.headers().frameOptions().disable();
        http.csrf().disable()
            .exceptionHandling()
            .and()
            .authorizeRequests()
            .mvcMatchers("/test/getuser").permitAll()
            .mvcMatchers("/swagger-ui.html").permitAll()
            .mvcMatchers("/swagger-resources/**").permitAll()
            .mvcMatchers("/v2/api-docs").permitAll()
//            .anyRequest().authenticated()
            .anyRequest().permitAll()
            .and()
            .httpBasic();
    }
}
